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PATENT APPLICATION 
Attorney Docket No. 0500.0003231 

METHOD AND APPARATUS FOR IMPROVING THE EFFICIENCY 
5 OF END-USER CERTIFICATE VALIDATION 

Related Co-Pending Application 

This application is related to co-pending application entitled "Method and 
1 0 Apparatus for Use in Determining VaUdity of a Certificate in a Communication System 
Employing Trusted Paths," attorney docket number ENT971 120-1, filed on March 8, 
1998, having inventors Paul Van Oorschot et al., having serial number 09/040,744 and 
assigned to instant assignee. 

1 5 Field Of The Invention 

The invention relates generally to computer systems employing cryptographic 
techniques to secure information, and more particularly to network communication 
systems using cryptographic techniques that employ certificates. 
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Background Of The Invention 



In typical public key cryptography systems, digital signature key pairs, having a 
private key and public key, are often used to authenticate a digital signature of a 

25 subscriber using a software application in order to confirm the identity of the sender of 
the message. A subscriber may generally be for example a network computer node, a 
software application or user in the security system. In addition to digital signature key 
pairs, encryption key pairs are also generally used to encrypt the data being sent fi'om one 
subscriber to another subscriber within the computer network. Certificates are typically 

30 generated by a trusted certification authority for the public keys of the private/public key 
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pair to certify that the keys are genuinely owned by a named subscriber. Standards, such 
as ISO 9594-8 available from the International Organization for Standardization, define 
typical certificate content. 

5 In a network community, there may be a multitude of different certification 

authorities and many subscribers. Generally, each subscriber stores a certification 
authority public key to verify that a trusted certification authority issued the certificate. A 
public key certificate typically includes a user public key which is bound by the signature 
of the certification authority to the subscriber name, and other data including expiry data 

10 indicating the expiration date or period for the public key certificate. Each sender 

(subscriber) has a copy of its own certificate. To send an encrypted message, a sender 
may access a directory, such as an onboard client cache memory or other certificate 
storage medium to get a copy of an encryption certificate for a specified receiver. When 
receiving digitally signed data, a receiver obtains a signature verification certificate and 

15 determines from the obtained certificate whether the sender has a valid signature. 

Generally, for a certificate to be considered valid, the digital signature must be valid and 
there must be no existing expiration or revocation of the certificate by an associated 
certification authority. Hence, subscribers typically serve as certificate validation units 
and validate certificates before encrypting information to other subscribers. Similarly, 

20 the subscribers also need to verify signature verification certificates before using a public 
key to validate a subscriber's signature. 

In computer network systems that employ cryptography, the certification 
authority, also referred to herein as the certificate issuing unit, typically issues certificates 

25 for subscribers that use the associated certification authority as the primary trusted server. 
Alternatively, in some systems a trusted subscriber may play the role of a CA in 
generating and signing certificates of other subscribers. In larger networks, the trust 
relationships between the certification authorities typically involve multiple certification 
authorities. Trust relationships between certification authorities determine how 

30 certificates issued by one certification authority may be utilized or verified by entities 



3 



certified by distinct certification authorities such as those in other networks. Since pubUc 
key certificates provide a mechanism for obtaining authenticated pubhc keys, provided 
the verifier has a trusted verification pubhc key of the certification authority which signed 
the certificate, trusted paths may be estabhshed and maintained among the certification 
5 authorities and hence subscribers in large computer networks. In the case of multiple 
certification authorities, a certificate verification unit, such as a subscriber, may wish to 
obtain an authentic public key by verifying a certificate signed by a certification authority 
other than one for which it originally possesses a trusted public key. In this case, the 
verifier may still verify a certificate signed by other certification authorities provided a 
10 chain of certificates can be constructed which corresponds to an unbroken chain of trust 
from the certification authority public key which the verification unit does trust, to the 
public key it wishes to obtain trust in. 

Conventional cryptographic systems, such as many public key cryptography 

1 5 systems, typically use a distributed directory where all certificates and certificate 

revocation lists are duplicated so each subscriber in a system can access the directory to 
perform validation. Certificate chains correspond to directed trust paths, also known as 
certification paths, such as trust relationships among certification authorities where at 
least one certification authority (CA) has certified another certification authority. A 

20 certificate containing the public key of a certification authority is called a CA-certificate. 
A CA-certificate resulting from one CA certifying another CA is called a cross- 
certificate, and the process of creating such a certificate is called cross-certification. In 
this case the CA which signs the certificate is different from the CA whose public key 
appears within the certificate. A CA-certificate may be either a cross-certificate or a self- 

25 signed certificate (where the latter is a CA-certificate signed by the same CA whose 
public key is within the certificate). Unilateral certification occurs where one 
certification authority certifies another certification authority but reciprocal certification 
does not occur. Where a pair of certification authorities certify each other, this is referred 
to as mutual cross-certification. In this case, the two corresponding cross-certificates are 

30 called a cross-certificate pair. 
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To ensure validity of a subscriber's public key, so that a subscriber may receive or 
send information along a fully trusted path, the goal for a verification unit is to find a 
sequence of certificates corresponding to a certification path starting at the certification 
5 authority whose public key the subscriber trusts directly (i.e., an anchor certificate issuing 
unit), and ending at a target certification authority which has signed the certificate of the 
public key to be verified. If the search for trusted paths is carried out using conventional 
search techniques, such as breadth first or depth first techniques as known in the art (see 
for example page 215-218 and 239-244 in "Data Structures and Algorithms", by Alfred 

10 V. Aho, John E. Hopcroft, and Jeffi-ey D. UUman, published in 1983 by Addison- Wesley, 
Reading, Massachusetts, incorporated herein by reference), then a problem arises by way 
of reduced system performance when large numbers of certification authorities are in the 
community of interest, and many different combinations of links among certification 
authorities in various networks (or the same network) exist. In such systems, a 

15 verification unit may spend valuable processing time verifying all combinations of links 
to determine whether a trusted path has been maintained with the certification authority 
of the verifying verification unit and the certificate issuing unit that issued the target 
certificate. An inefficiency results when many of the steps involved in an exhaustive 
search which explores a large number of network nodes, for example in a breadth- first 

20 search, end up leading to untrusted or non-existent paths, and therefore unnecessarily 

consumed computational effort. For example, the validation unit typically has to find the 
certification paths every time a signed electronic document is received or any time an 
encryption occurs; checking a large number of possible certification authority paths can 
be unnecessary and can take long periods of time thereby decreasing the system 

25 performance. In large systems, the performance may be so impeded as to render the 
vahdation unit impractical. 

Hierarchical chain trust structures with one way and/or mutual cross-certification 
among certificate issuing units typically have verification units verify in the following 
30 manner. Each entity or verification unit starts with a trusted pubhc key, for example the 
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public key of the certificate issuing unit which created its own certificate (anchor CA). 
The shortest trust chain from any entity is a path in the tree which travels upward fi*om 
the parent to a least common ancestor of the entity and a target entity, and then onwards 
back down to the target entity. However, if any CA-certificate or cross-certificate in that 
5 particular path has been revoked, has expired, or does not meet policy constraints as 
required by the anchor CA, that path must be discarded and another trust chain must be 
sought. In addition, the trust relationships between certificate issuing units may not be 
strictly hierarchical, in which case other valid paths may exist. Therefore, substantial 
entity resources can be expended in analyzing all of the possible certification links where 
10 a network contains a large number of certification authorities. 

Typically, a client engine or other unit that must validate a message from a 
sending unit, must typically search for, obtain and validate a chain of certificates required 
to validate a given end-user certificate for which typically requires the client engine to 

15 vahdate all certificates of issuing units that are trusted as determined by cross certificates. 
This can become an enormous task, particularly with large network systems. The client 
engine typically repeats this chain construction for each end-user certificate often with 
little memory of previous constructions. In addition, with conventional systems, when 
validating an end-user's certificate issued by, for example, a foreign certificate issuer (a 

20 certificate issuing unit that is not the vahdating unit's trust anchor), a client engine will 
construct a certificate chain from a suitable trust anchor to the end-user certificate. This 
generally involves retrieval and validation of each cross certificate in the certificate chain. 
This process is typically repeated for each end-user certificate. Although the client 
engine may cache cross certificates, and corresponding revocation information pertaining 

25 to those certificates, the retrieval, chain construction and validation of each cross 

certificate must typically still be performed by the client engine in order to validate an 
end user certificate. The caching operation may save the client engine some network 
accesses, but typically not the computational mode. 
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Accordingly, a problem arises since a client engine would be required to build a 
certificate chain in order to validate an end-user certificate. This can be time consuming, 
especially from a constrained client engine perspective, based on a potentially large 
computational and network access costs. In addition, the client engines typically may 
5 store the last chain construction but not store beyond the optional caching of cross 
certificates and corresponding revocation information. In a typical example, for the 
consecutive revocation of two end-user certificates verifiable using the same certificate 
chain, the client engine typically still rebuilds the certificate chain and validates each 
cross certificate from a cache of information when vaUdating the second certificate. 

10 

Accordingly, a need exists for an improved method and apparatus for a more 
efficient end-user certificate validation in systems employing certificates and trusted 
paths. 

1 5 Brief Description Of The Drawings 

FIG. 1 is a block diagram illustrating one example of a trusted public key 
certificate system employing a signed certificate set generator in accordance with one 
embodiment of the invention; 
20 FIG. 2 graphically represents one example of a signed certificate set in accordance 

with one embodiment of the invention and a signed certificate set revocation list in 
accordance with one embodiment of the invention; 

FIG. 3 is a flow chart illustrating one example of a method for determining 
validity of a certificate in a communication system employing cross certification among 
25 certificate issuing units in accordance with one embodiment of the invention; and 
FIG. 4 is a block diagram illustrating another example of an apparatus that 
employs a signed certificate set centrally for a commimity of interest in accordance with 
one embodiment of the invention. 

3 0 Detailed Description Of The Preferred Embodiment 
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Briefly, an apparatus and method collects, for a community of interest, at least one 
cross certificate associated with an anchor certificate issuing unit, and obtains at least one 
certificate issuing unit public key and an associated unique identifier for a cross-certified 

5 certificate issuing unit identified by the at least one cross certificate. For example, a 
certificate issuing unit, client engine or other suitable unit, searches for one or up to all 
certification authorities or certificate issuing units that it can reach based on chains of 
cross certificates to obtain, from one or more cross certificates, a plurality of public keys 
and associated unique identifiers for certificate issuing unit certificates that are trusted, 

10 for example, from the perspective of a given trust anchor. The apparatus selects those 
obtained certificates that satisfy, for example, some search criteria, such as what policy 
must be enforced in each cross certificate and CA-certificate, or, for example, the allowed 
path length or depth that the apparatus is allowed to evaluate. Accordingly, the apparatus 
and method creates a signed certificate set identifying certificate issuing units determined 

15 to be trusted by the anchor certificate issuing unit based on the cross certificates that the 
apparatus obtained. The signed certificate set includes at least a unique identifier, such as 
a certificate distinguished name (DN), and public key of each trusted certificate issuing 
unit. 

20 In one embodiment, the signed certificate set is signed by, for example, the unit 

performing the validation of the cross certificates, or other suitable trusted unit, and 
creates the signed certificate set to include general information in the form of a certificate 
or other suitable data structure that includes, for example, the trust anchor used, a serial 
number for the certificate or signed certificate set, a validity period for the certificate or 

25 signed certificate set, information for each trusted certification authority including, for 
example, an identifier for each trusted certification authority (e.g., their DN) and an 
appropriate trusted CA certificate, or, if desirable, just the verification public key of the 
trusted CA and an identifier for the public key (e.g. the DN of the trusted CA along with, 
for example, the subject key identifier of the pubUc key in the CA-certificate that contains 

30 the public key), or, if desirable, just a secure hash of the pubHc key, along with an 
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identifier for the public key (e.g. the DN of the trusted CA along with, for example, the 
subject key identifier in the CA-certificate that contains the public key or the serial 
number of the CA-certificate). 

5 In another embodiment, the method and apparatus includes creating a signed 

certificate set revocation list that may be archived for future use. As an example, a client 
engine may, for example, retrieve a signed certificate set, for an appropriate trust anchor, 
from a central repository or from any suitable source, and store the retrieved signed 
certificate set until that particular set expires based on its validity period or is revoked. 

1 0 To validate an end-user certificate, the client engine searches in the signed certificate set 
for the identifier of the public key that signed the end user certificate (e.g. the DN of the 
CA that issued the end-user certificate along with the authority key identifier of the end- 
user certificate). If found, the CA certificate or simply the public key corresponding to 
the issuer of the end-user certificate is used to validate the signature on the end-user 

1 5 certificate. If not found, then the client engine may indicate that the certificate is not 
trustworthy or may choose to use other means to validate the certificate. Accordingly, a 
chent engine or receiving engine may validate end entity certificates without requiring 
chain construction or obtaining chain information, such as CA-certificates or cross 
certificates, or vahdation of CA-certificates or cross-certificates by the chent engine. If 

20 the client engine can cache the signed certificate set, or import certificates directly fi*om 
the trusted signed certificate set into its own certificate trust hst, a client engine can more 
efficiently validate messages from senders in a given system. 

In another embodiment, the method and apparatus centrally creates a plurality of 
25 signed certificate sets on a per anchor certificate issuing unit basis wherein each signed 
certificate set contains at least, for example, a signed set of unique identifiers and 
associated public keys of each certificate issuing unit trusted by an anchor certificate 
issuing unit. If desired, instead of storing, for example, the public keys or the C A 
certificates of trusted certificate issuing units in the signed certificate set, an identifier of 
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such information (e.g. a DN of the certificate issuing unit and a key identifier) along with 
a secure hash of that information may also be used. 

If desired, the signed certificate set is created by removing the CAs that do not 
5 meet specified policy requirements based on, for example, policy identification data 
present in the certificate associated with the CA being validated^ in the cross-certificates, 
in the CA-certificate of the trust anchor, or in the attribute certificate associated with a 
particular of end-user of group of end-users 

10 FIG. 1 depicts one example of a trusted pubhc key certificate system 100 that 

employs at least one signed certificate set in accordance with one embodiment of the 
invention. The system 100 includes a number of certificate issuing units 102a-102n such 
as certification authorities, for issuing public key certificates, attribute certificates or any 
other suitable certificates or data structures. The system 100 also includes a plurality of 

15 signed certificate set generators 104a-104n, each associated with a respective certificate 
issuing unit 102a-102n, and a plurahty of message receiving units, such as client units 
106a-106n. In this example, certificate issuing unit 102a is the anchor certificate issuing 
unit for client units 106a and 106b. Similarly, the certificate issuing unit 102c is the 
anchor certificate issuing unit for client units 106c and 106d, and certificate issuing unit 

20 102n is an anchor certificate issuing unit for client unit 106n (additional or fewer). 

Certificate issuing units and chent units may also be included in the system, but are not 
shown. In this example, the client units 106a-106n may be, for example, but are not 
limited to, software applications, or any suitable processing unit that contains, for 
example, a cryptographic engine that can vahdate certificates or otherwise send encrypted 

25 messages to other client units in the system. 

By way of illustration, each of the certificate issuing units 102a-102n is cross 
certified with one or more certificate issuing units, as known in the art. This is illustrated 
by cross certificate lines 108a-108n. Each client unit 106a-106n communicates with its 
30 respective anchor certificate issuing unit via a suitable communication link illustrated 
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generally at 1 10. This may include, but is not limited to, for example, a bus, network 
link, Internet link, wireless link or any other suitable communication link. 

Each signed certificate set generator 104a-104n, may be a server or, for example, 
5 a software application, discrete logic, a plurality of processing units, or any other suitable 
structure that is operative to collect a plurality of cross certificates associated with at least 
one anchor certificate issuing unit that is operative to obtain all certificate issuing unit 
certificates for all of the cross certified certificate issuing units identified by the cross 
certificates' interest. The signed certificate set generators 104a-104n are operative to 

1 0 create a signed certificate set (SCS) identifying certificate issuing units determined to be 
trusted by the anchor certificate issuing unit, based on the cross certificates, wherein the 
signed certificate set includes at least a unique identifier, such as a distinguished name 
(DN), and a public key for each trusted certificate issuing unit that has been determined to 
meet certain trust criteria. As used herein, the public key of each trusted certificate 

1 5 issuing unit includes any index to such public keys to provide, for example, an indirect 
link (e.g. a DN of the trusted certificate issuing unit and a key identifier of the pubhc key, 
along with a secure hash of the public key) 

By way of illustration, certificate issuing unit 102c will be described although the 
same operations are performed by the other certificate issuing units in the community of 

20 interest. The signed certificate set generator 104c is shown as being incorporated as part 
of the certificate issuing unit 102c, but may be a separate server or other suitable device 
that performs the operations described herein. The signed certificate generator 104c after 
creating the signed certificate sets, stores the signed certificate sets (SCS) (see, e.g., FIG. 
2)and pub fishes them in an SCS repository 1 12 such as an X.500-type directory or other 

25 suitable store that is accessible by the client units associated with the particular certificate 
issuing unit or that are associated with other certificate issuing units. As shown, client 
units 106c and 106d access the SCS repository 1 12 as indicated by dashed lines 1 14a and 
1 14b. This access may be through any suitable form as known in the art for accessing, 
for example, X.500-type directories. Accordingly, the chent units 106c and 106d are in 

30 operative communication with the signed certificate set generator 104c via 
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communication links 1 10 or have access to the SCS's through suitable links 1 14a and 
1 14b. Each client unit includes, for example, a software application that operates on one 
or more processing units to perform the operations described herein. Alternatively, each 
of the cUent units may have discrete logic or any suitable combination of hardware and 
software to perform the operations as described herein. Accordingly, the client units may 
be, for example, software applications, wireless devices, non-wireless devices, Internet 
appliances or any other suitable devices. Each client unit is operative to access the signed 
certificate set and to determine whether a received message from another client unit, for 
example, is from a trusted source, based on the signed certificate set. Each client unit 
106c and 106d communicates, for example, with their anchor certificate issuing unit 102c 
to obtain, for example, their pubhc key certificates signed by the anchor certificate 
issuing unit, as known in the art. In addition, the chent units 106c and 106d also may 
request or otherwise obtain a suitable SCS from SCS repository 1 12 without 
communicating with the signed certificate set generator 104c. 

Referring to FIGs. 1-3, signed certificate set generator 104a of certificate issuing 
unit 102a generates signed certificate set 200 which contains, for example, a list of CAs, 
trusted by trust anchor certificate issuing unit 102a. The signed certificate set 200 may 
contain no entries if no CA's are trusted by the anchor certificate issuing unit. The SCS 
200 may be stored, for example, in the same SCS repository 1 12 or in a separate SCS 
repository (not shown) not necessarily associated with certificate issuing unit 102a. In 
this example, the generated SCS 200 includes a hst 202 of unique CA identifiers 204a- 
204n, and associated public keys 206a-206n of each certificate issuing unit trusted by the 
anchor certificate issuing unit 102a. As such, the hst 202 includes unique identifiers and 
associated pubhc keys 204a-204n and 206a-206n of certificate issuing units 102b, 102c 
and 102n. For example, the signed certificate set generator 104a performs certificate 
vahdation of cross certificates from cross certification 108b to gain trust of certificate 
issuing unit 102b in conventional cross techniques, as known in the art. If the cross 
certificate of certificate issuing unit 102b is suitably validated, data from the certificate 
(or the certificate itself) is added to the list 202 along with a unique identifier 204a and its 
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associated public key 206 ( or reference the public key 206a, for example, a secure hash 
of the public key). Anchor certification issuing unit 102a will then collect additional 
cross certificates that include, for example, nested cross certificates (chained cross 
certificates) from the plurality of certificate issuing units 102c and 102n, for example, via 

5 the cross certificate relationships 108a and 108n, respectively. As known in the art, the 
cross certificates via relationship 108b may be stored in one or more data repositories, 
such as an X.500 directory, associated with the anchor certificate issuing units 102a and 
102b. The data repository associated with the anchor certificate issuing unit 102b may 
also include cross certificates between certificate issuing 102b and 102n via the cross 

1 0 certificate relationship 1 08n, as known in the art. 

By collecting and validating the plurality of cross certificates associated with 
certificate issuing units 102b-102n, identified by cross certificates, for example, in the 
data repository, the signed certificate set generator 104 creates the signed certificate set 

15 200. For example, the list 202 would also include the unique identifier associated with 
certificate issuing unit 102n and its associated public key if there is a trust relationship via 
cross certificates with certificate issuing unit 102b which is trusted by the anchor 
certificate issuing unit 102a via cross certificate relationship 108b. Accordingly, the list 
202 includes a sequence of cross certificates and/or just the pubHc keys (or information 

20 sufficient to retrieve the public keys in a secure way, for example the public key identifier 
and a secure hash of the public key) of the trusted certificate issuing units determined to 
be valid via cross certification relationships. 

In addition, the signed certificate set generator 104 does not include in the list 202 
25 C A' s that do not meet poHcy criteria. For example, if a trust relationship existed 

between certificate issuing units based on, for example, a cross certification relationship 
but one of the certificate issuing units did not have acceptable poUcy criteria, for 
example, did not provide certificates to its respective client units using a suitable strength 
encryption algorithm, for example, the signed certificate set generator would not allow 
30 the certificate issuing unit and its associated pubhc key to be hsted in list 202. Pruning 
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the signed certificate set (SCS) of trasted certification authorities that are included on the 
hst is based on, for example, predefined pohcy identifying information accessible by the 
signed certificate set generator. For example, a security officer may only allow certificate 
issuing units that comply with specified policy requirements so that its client units will 
trust only those certification issuing units that meet the policy criteria The procedure for 
applying pohcy criteria when finding chains of trusted CA-certificates and cross- 
certificates is known in the art. The required policies might be defined by a trust anchor 
as those suitable for a particular group of end-users or a particular apphcation or group of 
applications. The poUcy might be identified, for example, in an attribute certificate that 
apphes to a particular group of end-users, hi a chain of cross-certificates that extends 
from the trust anchor to the trusted CA, each intermediate CA must meet the policy 
constraints; otherwise the chain is not valid and the CA will not be placed in the SCS on 
the basis of that particular certificate chain (however, there may be another chain that 
meets the policy criteria). The created SCS 200 also includes, if desired, SCS extensions 
208 which may be data representing identifiers of the pohcy constraints that were apphed 
in evaluating trust relationships. The certificate set generator may issue one or more 
SCS's, each one containing a set of CA's that are trusted under the application of a 
particular set of pohcy constraints. In another example, the signed certificate set 
generator might place in the signed certificate several groups of trusted CA's, along with 
identifiers of the policy constraints that were appUed when evaluating trust in the set of 
CA's in each group. 

The created signed certificate set 200 also includes, if desired, signed certificate 
set extensions 208 which may be data representmg, for example, the depth level that the 
signed certificate set generator uses to determine which certificate issuing units and 
associated public keys can be placed in the hst 202. For example, the signed certificate 
set generator 104a may be set, through a user interface, for example, to evaluate a limited 
certain depth of cross certification relationships. As a result, another certificate issuing 
unit, for example, would be cross certified with certificate issuing unit 102n, and with no 
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other certificate issuing units, this additional depth level may or may not be used so that 
some certificate issuing units may not be evaluated for inclusion in the list 202. 

The signed certificate set 200 may also include a signed certificate set serial 
5 number 210 which is updated each time a new SCS 200 is published, for example, in an 
SCS repository or X.500 directory. The SCS 200 may also include an SCS vahdity 
period 212 that defines the hfe of the SCS 200 after which time the SCS 200 is no longer 
trustworthy. It may also contain the date and time at which the SCS generator expects to 
issue the next SCS. It may also contain the identifier of a distribution point where the 

10 chent may find revocation information for this particular SCS. For example, revocation 
information may be distributed by the SCS generator in the form of a SCS revocation list 
posted at a particular entry in an X.500 directory. For example, the format and method of 
distribution of the SCS revocation Ust may be similar to those of the X.509 certificate 
revocation list (CRL), as known in the art. The SCS 200 may also be signed to form the 

15 signed certificate set so that it is given a level of trust that is trusted by the client unit. 
The digital signature 214 results from the digitally signing of the created signed 
certificate set to provide a trusted signed certificate set for use by a client unit. The 
digital signatui-e 214 may be, for example in this case, the digital signature of the anchor 
certification authority 102a or whichever authority is directly trusted by a respective 

20 chent unit. A third party notary or other third party signatory may also digitally sign the 
SCS if desired. Also if desired, the SCS may include a poHcy identifier as noted above, 
used to create the signed certificate set such that certain poUcies are verified so that hsted 
certification issuing units and associated pubUc keys are included only from those 
certification authorities that comply with the identified pohcy information . The SCS 200 

25 may also include an SCS identifier 216 that represents that it is an SCS associated with, 
in this case, certificate issuing unit 202a. This may be usefiil, for example, where SCS's 
are centrally stored for access by client units associated with differing trust anchor 
certificate issuing units such that a client unit may request and obtain an SCS defined by 
the SCS ID so that it only obtains its anchor certificate issuing unit. Once generated, the 
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SCS is published and accessible by a plurality of different client units such as being 
published in the SCS repository 1 12 or in another suitable fashion. 

The signed certificate set generator 104c or other suitable entity also may generate 
5 a signed certificate set revocation hst 218 containing at least an identifier 220 of at least 
one signed certificate set that has been revoked by, for example, the signed certificate set 
generator 104a, or other suitable authority, or containing an identifier 220 that denotes 
that no signed certificate set has been revoked. The identifier 220 may be, for example, a 
list of SCS serial numbers 210 of revoked SCS for selected anchor certificate issuing 
1 0 units. This may be done, for example, via a certificate revocation hst methodology as 
known in the art. The SCS revocation Ust 220 includes a digital signature 222 of, for 
example, the certificate issuing unit 102a or signed certificate set generator 104a or 
whichever entity is a trusted revoker of signed certificate sets. Accordingly, when a 
client unit requests an SCS from a respective repository it may also obtain the SCS 
15 revocation Ust 218 to indicate whether it can trust a cached or otherwise obtained SCS. 

FIG. 3 illustrates a method for determining validity of a certificate by a recipient, 
(e.g., chent) using, for example, the signed certificate set. As shown in block 300, the 
method begins with the start of the precomputation of an SCS on a per certificate issuing 

20 unit basis. This is done, for example, as shown in block 302 by collecting a plurahty of 
cross certificates associated with a given trust anchor certificate issuing unit from, for 
example, an X.500 directory or other suitable storage medium or mediums. As shown in 
block 304, the method includes validating, by for example, the signed certificate set 
generator, each cross certificate associated with the anchor CA to see if the certificate is 

25 vaUd. As shown in block 306, the method includes storing each valid certificate, or at 
least an identifier and pubhc key of a validated (i.e., trusted) certificate issuing unit into 
the list 202 for a first level of trust, meaning a direct cross certification with another 
certificate issuing unit. 
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As shown in block 308, if a signed certificate set generator is selected, for 
example, through a user interface or other suitable mechanism, to evaluate an additional 
trust depth, the signed certificate set generator will then collect additional cross 
certificates from a trusted certificate issuing unit for each valid certificate issuing unit at 

5 that second level of depth and add the validated identifiers for the respective certification 
issuing units and their pubUc keys. As shown in block 310, after the collection of the 
certificates, the vahdation of each certificate occurs. As shown in block 312, this process 
continues for all cross certificates up to the desired depth in a community of interest to 
create the list 202 in the SCS. Once all of the unique identifiers and associated pubhc 

1 0 keys of trusted certificate issuing units in a community of interest have been obtained, the 
list 202 and the other suitable information is digitally signed to generate the signed 
certificate set as shown in block 314. The signed certificate set may be then published so 
that it is accessible by a plurality of different cHent units. 

15 As shown in block 316 from the chent unit's perspective, the chent unit may 

access the respective repository containing the SCS for its anchor certificate issuing unit 
and cache the most recent SCS in its internal memory so that it now contains a fist of all 
CAs tiTisted by its anchor. When the client receives a message from a sending unit 
associated with a different anchor certificate issuing unit, the receiving unit need merely 

20 compare the issuer DN from the sender certificate with tiie DNs in the fist 202 to 
determine if it can trust the public key that signed the sender certificate. The SCS 
contains the public key that can be used to validate the sender certificate. Accordingly, 
the client need not perform validation of each CA certificate in a chain. In addition, the 
sender need not attach a certificate chain to the message. Similarly, when the client sends 

25 an encrypted message to a receiving unit associated with a different anchor certificate 
issuing unit, the sending unit need merely compare the issuer DN in the receiver's 
certificate with the DNs in the list 202 to determine if it can ti^ist the issuer of the 
receiving unit's certificate. The SCS contains the pubhc key that can be used to validate 
the receiver's certificate. Moreover, the signed certificate set generator 104 periodically 
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generates the SCS's for all CAs in the community of interest and need not perform this 
operation each time a message needs to be validated by a client unit. 

FIG. 4 illustrates an alternative embodiment wherein, for example, a single signed 
5 certificate set generator obtains and generate all SCSs for all certificate issuing units in a 
community of trust. As such, central SCS generator 400 centrally creates a plurality of 
signed certificate sets 402, on a per anchor certificate issuing unit basis. Each signed 
certificate set 402 includes at least a list of unique identifiers and associated public keys 
of each certificate issuing unit trusted by their respective anchor certificate issuing unit. 
10 The plurality of SCS's is then pubUshed in, for example, a common repository accessible 
by a plurality of different client units 404a-404n. Each SCS includes a digital signature 
of the generating trusted entity and a signed certificate set identifier associated with a 
given anchor certificate issuing unit. Preferably, although not required, each SCS 
includes a signed certificate set serial number generated each time a certificate set is 
15 published.. Furthermore, each SCS might contain one or more hsts of CA's, each list 
representing a set of CA's that are trusted on the basis of trust in a particular trust anchor 
or in a set of trust anchors and possibly with the appHcation of a particular set of policy 
constraints. 

20 As with the system in FIG. 1, a client unit verifies the digital signature on an 

obtained signed certificate set to determine if the signed certificate set is valid. The client 
unit verifies the signature on the SCS revocation Ust and checks whether the SCS was 
revoked and whether the signed certificate set needs to be regenerated for the anchor 
certificate issuing unit. For example, if the signed certificate set that has been cached by 

25 a client unit appears on an SCS revocation hst, the client unit may request a new SCS 

directly from its anchor certificate issuing unit, or may again access the SCS repository to 
obtain an updated SCS for a given anchor certificate issuing unit. If the client unit deems 
that a firesh or more recently issued SCS should be used, the client unit may request that 
the SCS generating unit issue a fi*esh SCS, even if the SCS cached by the chent does not 

30 appear on any SCS revocation hst. The SCS generating unit may or may not respond 
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immediately to client requests for a fresh SCS by generating a new SCS, sending it to the 
client unit, or posting it into an X.500 directory or other certificate repository. The SCS 
generating unit may respond to client requests based on criteria that the SCS generating 
unit itself applies; for example, it may generate and distribute a fresh SCS if it receives 

5 requests from sufficiently many client units within a certain time interval. Alternatively, 
for example, the SCS generating unit may simply generate a fresh SCS at periodic 
intervals. Alternatively, for example, the SCS generating unit may generate a fresh SCS 
when one or more of the trust relationships in the plurality of CA certificates or cross- 
certificates has changed; for example, it one or more of those certificates has been 

10 revoked. Also, the certificate set revocation hst may also be posted into a X.500 
directory or other repository to be accessible to a plurality of clients. 

As described herein, the operations of the signed certificates generator may be 
carried out by one or more processing units based on executable instructions that may be 

15 stored, for example, in a storage medium containing memory that contains executable 
instructions that when read by one or more processing units causes the one or more 
processing units to perform the operations described herein. In addition, the operations of 
the client units, including, but not limited to, obtaining SCSs, and verifying the SCSs in 
response to desiring to approve a received message, may be performed by one or more 

20 processing units associated with a chent unit. Accordingly, executable instructions may 
be stored on a storage medium so that the client unit can carry out the operations 
described herein. The storage medium may include, but is not limited to, volatile 
memory, non- volatile memory, including CD ROMs, distributed storage such as via the 
Internet, or any other suitable memory containing the requisite executable instructions. 

25 

Accordingly, based on the above apparatus and methods, the efficiency of 
vahdation of end-user certificates can be greatly improved by providing a client simply 
with a list of public keys associated with trusted certification authorities thereby 
eliminating the need for a client unit to validate each certificate in a chain of certificates 
30 each time a message is received. In addition, the above method and apparatus provides, 
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among other advantages, the ehmination of the need for a certificate issuing unit to 
continually perform vaHdation of certificate chains since a signed certificate set generator 
may perform the operation for all certificate issuing units in a community of interest. 
Also, a signed certificate set generator may be programmed based on certain desired 
5 policy criteria to construct a signed certificate set starting jfrom any number of root 
certificates. The signed certificate set generator may construct one or more SCS's each 
one based on a particular set of policy criteria and a particular anchor CA, or it may place 
one or more hsts of trusted CA's within a single SCS, each hst being constructed based 
on a particular set of policy criteria and trust anchor or anchors. Each SCS is managed 

1 0 such as management of its validity period and potentially expiry period. The SCS 

includes, for example, a hst of trusted certificate issuing units or public keys indexed, for 
example, by appropriate identifiers such as the DN from the validated certificates. The 
user of the SCS allows the vaUdation of end entity certificates without requiring chain 
construction or validation of CA certificates by a chent unit. Validation of the SCS and 

15 vaHdation of the sender or receiver's certificate using the pubhc key in the SCS is all that 
is needed. Capability for the client unit to either cache the SCS or import the certificates 
or public keys to form a list into its own certificate trust lists is also quite useful. 

It should be understood that the implementation of other variations and 
20 modifications of the invention in its various aspects will be apparent to those of ordinary 
skill in the art, and that the invention is not limited by the specific embodiments 
described. It is therefore contemplated to cover by the present invention, any and all 
modifications, variations, or equivalents that fall within the spirit and scope of the basic 
underlying principles disclosed and claimed herein. 
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Claims 



What Is Claimed Is: 

5 L A method for detennining validity of a certificate in a system employing cross 
certification among certificate issuing units comprising the steps of: 

for a community of interest, collecting at least one cross certificate 
associated with an anchor certificate issuing unit, and obtaining at least one 
certificate issuing unit public key and an associated unique identifier fora cross- 
10 certified certificate issuing unit identified by the at least one cross certificate; and 

creating a signed certificate set identifying certificate issuing units 
determined to be trusted by the anchor certificate issuing unit, based on the at 
least one cross certificate, wherein the signed certificate set includes at least the 
unique identifier and the public key of each trusted certificate issuing unit. 

15 

2, The method of claim 1 including the step of generating a signed certificate set 
revocation Ust containing at least an identifier of at least one signed certificate set that 
has been revoked. 

20 3. The method of claim 1 wherein the step of collecting at least one of the plurality of 
cross certificates includes obtaining chained cross certificates from a plurality of 
certificate issuing units. 

4. The method of claim 1 including the step of pubUshing the signed certificate set of 
25 certificate issuing units wherein the published signed certificate set is accessible by a 

plurality of different cHents units. 

5. The method of claim 1 including the steps of: 

generating a signed certificate set of certificate issuing units in response to 
30 requests by one or more client units; 
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distributing the signed certificate set to client units; and 
publishing the signed certificate set generated in response to client 

requests, wherein the published signed certificate set is accessible by a plurality of 

different clients units. 

5 

6. The method of claim 1 wherein the step of collecting the plurality of cross certificates 
includes collecting cross certificates from a data repository associated with the anchor 
CA. 

1 0 7. The method of claim 1 including the step of digitally signing the created signed 

certificate set of certificate issuing units trusted by the anchor certificate issuing unit 
to provide a trusted cross certificate signed certificate set for use by a client unit. 

8. The method of claim 1 including the step of adding at least one of a validity period, 

1 5 serial number, set extension, and policy identifier to the created signed certificate set. 

9. The method of claim 4 including the step of determining, by a chent unit if the signed 
certificate set of trusted certificate issuing units is revoked and whether the signed 
certificate set needs to be regenerated for the anchor certificate issuing unit. 

20 

10. The method of claim 1 wherein the step of creating the signed certificate set of 
certificate issuing units trusted by the anchor certificate issuing unit includes 
generating a plurality of signed certificate sets on a per anchor certificate issuing unit 
basis wherein each signed certificate set contains at least: a list of unique identifiers 

25 and associated public keys of each certificate issuing units trusted by an anchor 
certificate issuing unit, and a digital signature of a trusted entity and a signed 
certificate set identifier associated with a given anchor certificate issuing unit. 

11. The method of claim 1 including the step of generating a signed certificate set 

30 containing zero or more of the following: signed certificate set extensions, a signed 
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certificate set serial number generated each time a signed certificate set is published, 
an indication of the date and time at which a new signed certificate set is to be issued, 
an identifier that indicates where corresponding signed certificate set revocation list is 
posted, one or more identifiers that indicates the policy constraints under which the 
5 list of trusted CA's was constructed. 

12, The method of claim 1 including the steps of: 

creating a plurality of signed certificate sets on a per anchor certificate issuing 
unit basis wherein each signed certificate set contains at least: a fist of unique identifiers 
10 and associated public keys of each certificate issuing units trusted by an anchor certificate 
issuing unit, and 

publishing each signed certificate set wherein each pubhshed signed certificate set 
is accessible by a plurality of different clients units. 

15 13. The method of claim 12 wherein the step of creating the plurality of signed certificate 
sets on a per anchor certificate basis includes vahdating a digital signature associated 
with each cross certificate for a given anchor certificate issuing unit and including on 
a signed certificate set, only those certificate issuing units that had valid certificates. 

20 14, The method of claim 1 including the step of caching, by a client unit, a copy of the 
signed certificate set of certificate issuing units trusted by the anchor certificate 
issuing unit and wherein the client unit does not perform validation of certificate 
issuing unit certificates but validates an end-entity certificate by seeing if the 
certificate issuing entity associated with the end-entity is on the cached signed 

25 certificate set and using the public key of that certificate issuing entity to validate the 

end-entity certificate 

15. The method of claim 1 including the step, when identifying trusted certificate issuing 
unit certificates, of applying policy constraints applicable for a particular trust anchor 
30 or a particular group of end entities or a particular group of client applications, 
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including the step of placing identifiers of those policy constraints in the signed 
certificate set that contains the list of tmsted certificate issuing units. 
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16. An apparatus for use in determining validity of a certificate in a system employing 

trusted paths comprising: 

a signed certificate set generator operative to collect at least one cross 
certificate associated with at least one anchor certificate issuing unit, and obtain 
at least one certificate issuing unit public key and an associated unique identifier 
for a cross-certified certificate issuing unit identified by the at least one cross 
certificate; and operative to create a signed certificate set identifying certificate 
issuing units determined to be trusted by the anchor certificate issuing unit, based 
on the at least one cross certificates, wherein the signed certificate set includes at 
least a unique identifier and public key of each trusted certificate issuing unit. 

17. The apparatus of claim 1 6 wherein the signed certificate set generator generates 
and pubhshes a signed certificate set revocation fist containing at least an identifier of at 
least one signed certificate set that has been revoked. 

18. The apparatus of claim 16 wherein the signed certificate set generator obtains chained 
cross certificates firom a plurality of certificate issuing units to collect the plurality of 
cross certificates. 

19. The apparatus of claim 16 wherein the signed certificate set generator publishes 
the signed certificate set of certificate issuing units wherein the published signed 
certificate set is accessible by a plurality of different clients units. 

20. The apparatus of claim 16 wherein the signed certificate set generator collects cross 
certificates fi-om a data repository associated with the anchor CA. 

21. The apparatus of claim 16 wherein the signed certificate set digitally signs the created 
signed certificate set of certificate issuing units trusted by the anchor certificate 
issuing unit to provide a tinisted cross certificate signed certificate set for use by a 
chent unit. 
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22. The apparatus of claim 16 wherein the signed certificate set generator adds at least 
one of a validity period, serial number, set extension, and policy identifier to the 
created signed certificate set. 

5 

23. The apparatus of claim 16 wherein the signed certificate set generator generates a 
plurality of signed certificate sets on a per anchor certificate issuing unit basis wherein 
each signed certificate set contains at least: a list of unique identifiers and associated 
public keys of each certificate issuing units trusted by an anchor certificate issuing unit, 

10 signed certificate set extensions , a signed certificate set serial number generated each 
time a signed certificate set is published, a digital signature of a trusted entity and a 
signed certificate set identifier associated with a given anchor certificate issuing unit. 

24. The apparatus of claim 16 wherein the signed certificate set generator: 

15 creates a plurality of signed certificate sets on a per anchor certificate issuing unit 

basis wherein each signed certificate set contains at least: a list of unique identifiers and 
associated public keys of each certificate issuing units trusted by an anchor certificate 
issuing unit, and 

publishes each signed certificate set wherein each published signed certificate set 
20 is accessible by a plurality of different clients units. 

25. The apparatus of claim 23 wherein the signed certificate set generator creates the 
plurality of signed certificate sets on a per anchor certificate basis by vahdating a 
digital signature associated with each cross certificate for a given anchor certificate 

25 issuing unit and including on a signed certificate set, only those certificate issuing 

units that had valid certificates. 



30 



26 



26, A trusted public key certificate system comprising: 

a signed certificate set generator operative to collect a plurality of cross 
certificates associated with at least one anchor certificate issuing unit, and obtain 
a plurality of certificate issuing unit public keys and associated unique identifiers 
5 for cross-certified certificate issuing units identified by the plurality of cross 

certificate; and operative to create a signed certificate set identifying certificate 
issuing units determined to be trusted by the anchor certificate issuing unit, based 
on the cross certificates, wherein the signed certificate set includes at least a 
unique identifier and public key of each trusted certificate issuing unit; and 
1 0 at least one client unit in operative communication with the signed 

certificate set generator and operative to access the signed certificate set and to 
determine whether a received message is from a trusted source based on the 
signed certificate set. 

15 27, The system of claim 26 wherein the signed certificate set generator generates a 
signed certificate set revocation list containing at least an identifier of at least one signed 
certificate set that has been revoked. 

28. The system of claim 27 wherein the signed certificate set generator publishes the 
20 signed certificate set of certificate issuing units wherein the published signed certificate 

set is accessible by a plurality of different clients units. 

29. The system of claim 26 wherein the signed certificate set generator: 

creates a plurality of signed certificate sets on a per anchor certificate issuing unit 
25 basis wherein each signed certificate set contains at least: a list of unique identifiers and 
associated pubhc keys of each certificate issuing units trusted by an anchor certificate 
issuing unit, and 

publishes each signed certificate set wherein each published signed certificate set 
is accessible by a plurality of different chents units, 

30 
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30. A storage medium comprising: 

memory containing executable instructions that when read by one or more 
processors, causes the one or more processors to: 
5 for a community of interest, collect at least one cross certificate associated 

with at least one anchor certificate issuing unit, and obtain at least one certificate 
issuing unit public key and associated unique identifier for a cross-certified 
certificate issuing unit identified by the cross certificate; and 

create a signed certificate set identifying certificate issuing units 
10 determined to be trusted by the anchor certificate issuing unit, based on the at 

least one cross certificate, wherein the signed certificate set includes at least a 
unique identifier and public key of each trusted certificate issuing unit. 

3 1 , The storage medium of claim 30 wherein the memory contains executable 

15 instructions that when read by one or more processors, causes the one or more processors 
to: 

generate a signed certificate set revocation list containing at least an 
identifier of at least one signed certificate set that has been revoked. 

20 32. The storage medium of claim 30 wherein the memory contains executable 

instructions that when read by one or more processors, causes the one or more processors 
to: 

publish the signed certificate set of certificate issuing units wherein the 
pubhshed signed certificate set is accessible by a plurality of different chents units. 

25 

33, The storage medium of claim 30 wherein the memory contains executable 
instructions that when read by one or more processors, causes the one or more processors 
to digitally sign the created signed certificate set of certificate issuing units trusted by the 
anchor certificate issuing unit to provide a trusted cross certificate signed certificate set 
3 0 for use by a client unit. 
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34. The storage medium of claim 30 wherein the memory contains executable 
instructions that when read by one or more processors, causes the one or more processors 
to add at least one of a validity period, serial number, set extension, and policy identifier 
5 to the created signed certificate set. 



35. The storage medium of claim 30 wherein the memory contains executable 
instructions that when read by one or more processors, causes the one or more processors 
to: 

10 create a plurality of signed certificate sets on a per anchor certificate issuing unit 

basis wherein each signed certificate set contains at least: a list of unique identifiers and 
associated pubhc keys of each certificate issuing units trusted by an anchor certificate 
issuing unit, and 

publish each signed certificate set wherein each published signed certificate set is 
1 5 accessible by a plurality of different clients units. 



36. The storage medium of claim 30 wherein the memory contains executable 
instructions that when read by one or more processors, causes the one or more 
processors to collect all cross certificates associated with the at least one anchor 

20 certificate issuing unit and obtaining all certificate issuing unit certificates 

identified by the cross certificates. 

37. The storage medium of claim 30 wherein the memory contains executable 
instructions that when read by one or more processors, causes the one or more 

25 processors to: 

generate a signed certificate set of certificate issuing units in response to 
requests by one or more client units; 

distribute the signed certificate set to client units; and 
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publish the signed certificate set generated in response to chent requests, 
wherein the pubUshed signed certificate set is accessible by a plurality of different 
chents units. 
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METHOD AND APPARATUS FOR IMPROVING EFFICIENCY 
OF END-USER CERTIFICATE VALIDATION 

5 

Abstract Of The Disclosure 

An apparatus and method collects, for a community of interest, at least one cross 
certificate associated with an anchor certificate issuing unit, and obtains at least one 

10 certificate issuing unit public key and an associated unique identifier for a cross-certified 
certificate issuing unit identified by the at least one cross certificate. For example, a 
certificate issuing unit, client unit, or other suitable unit, searches for one or up to all 
certification authorities or certificate issuing units that it can trust based on cross 
certificate chains. This is done, for example, from a given trust anchor. The apparatus 

15 selects those obtained certificates that satisfy, for example, some search criteria, such as 
what policy must be enforced in each certificate, for example, the allowed path length or 
depth that the apparatus is allowed to evaluate, and creates a signed certificate set, such as 
a list of all trusted certificate issuing units from the perspective of a given trust anchor. 
Accordingly, the apparatus and method creates a signed certificate set identifying 

20 certificate issuing units determined to be trusted by the anchor certificate issuing unit 
based on the cross certificates that the apparatus obtained. The signed certificate set 
includes at least a unique identifier of each trusted certificate issuing unit , such as the 
distinguished name (DN) of the certificate issuing unit, and public key of each trusted 
certificate issuing unit. 
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DECLARATION 
FOR UTILITY OR DESIGN 
PATENT APPLICATION 

(37 CFR 1.63) 

^ Declaration Submitted with Initial Filing, OR 
Q Declaration Submitted after Initial Filing 
(surcharge (37 CFR 1.16 (e)) required) 

As a below named inventor, I hereby declare that: 

My residence, post office address, and citizenship are as stated below next to my name. 

I believe I am the original, first and sole inventor (if only one name is listed below) or an original, first and joint 

inventor (if plural names are listed below) of the subject matter which is claimed and for which a patent is sought on the 

invention entitled: Method and Apparatus for Improving Efficiency of End-User Certificate Validation 

the specification of which: 

H is attached hereto. 

O was file on (MM/DDA'YYY) as United States Application Number or PCX International Application 
Number and was amended on (MM/DDA'YYY) (if applicable). 



Attorney Docket Number 0500.0003231 
First Named Inventor David Montgomery 

COMPLETE IF KNOWN 
Application Number 
Filing Date 
Group Art Unit 
Examiner Name 



1 hereby state that I have reviewed and understand the contents of the above identified specification, including the 
claims, as amended by any amendment specifically referred to above. 

1 acknowledge the duty to disclose information wtaich is material to patentability as defined in 37 CFR 1.56. 



I hereby claim foreign priority benefits under 35 U.S. C, 1 19(a)-(d) or 365(b) of any foreign application(s) for patent or inventor's certificate, or 365(a) 
of any PCT international application which designated at least one country other than the United States of America, listed below and have also 
identified below, by checking the box, any foreign application for patent or inventor's certificate, or of any PCT international application having a 



Prior Foreign 
Application Number(s) 


Country 


Foreign Filing Date 
(MM/DD/YYYY) 


Priority Not 
Claimed 


Certified Copy Attached? 
YES NO 








□ 


□ □ 








□ 


□ □ 



I I Additional foreign application numbers are listed on a supplemental priority data sheet PTO/SB/02B attached hereto. 



Application Number(s) 


Filing Data (MM/DDA^YYY) 











I I Additional provisional application numbers are listed on a supplemental priority data sheet PTO/SB/02B attached hereto. 



1 hereby claim the benefit under 35 U.S.C. 120 of any United States application(s), or 365(c) of any PCT international application designating the 
United States of America, listed below and, insofar as the subject matter of each of the claims of this application is not disclosed in the prior United 
States or PCT International application in the manner provided by the first paragraph of 35 U.S.C. 1 12, 1 acknowledge the duty to disclose 
information which is material to patentability as defined in 37 CFR 1 .56 which became available between the filing date of the prior application and 



U.S. Parent Application or PCT 
Parent Number 


Parent Filing Date 
(MM/DDA^YYY) 


Parent Patent Number 
(if applicable) 















I I Additional U.S. or PCT international application numbers are listed on a supplemental priority data sheet PTO/SB/02B attached hereto. 



Client No. 



As a named inventor, I hereby appoint the following registered practitioner(s) to prosecute this application and to 



transact all 


business in the Patent and Trademark Office connected therewith: 


Name 


Registration Number 


Name 


Registration Number 


John R. Garrett 


27,888 


Christopher J. Reckamp 


34,414 


Daniel C. Crilly 


38,417 















n Additional registered practitioner(s) named on supplemental Registered Practitioner Information sheet PTO/SB/02C attached hereto. 

Direct all correspondence to: Markison & Reckamp, P.C, 

P.O. Box 06229 
Wacker Drive 
Chicago, Illinois 60606-0229 
Telephone:312-939-9800 
Facsimile: 312-939-9828 

1 hereby declare that all statements made herein of my own knowledge are true and that all statements made on 
information and belief are believed to be true; and further that these statements were made with the knowledge that 
willftil false statements and the like so made are punishable by fine or imprisonment, or both, under 18 U.S.C. 1001 and 
that such willful false statements may jeopardize the validity of the application or any patent issued thereon. 



Name of Sole or First Inventor: 


H A petition has been filed for this unsigned inventor 


Given Name (first and middle [if any]) 


Family Name or Surname 


David. 


Montgomery 


Inventor's 
Signature 




Residence 


City: Ottawa f) ^ State: Ontario 


Country: Canada 1 Citizenship: Canadian 


Post Office Address 2306-l^tfO Riverside Drive 


City: Ottawa state: Ontario 


ZIP: KIG 4J4 Country: Canada 



Name of Additional Joint Inventor: 



m A petition has been filed for this unsigned inventor 



Given Name (first and middle [if any]) 


Family Name or Surname 






Inventor's 
Signature 




Date 




Residence 


City: 


State: 


Country: 


Citizenship: 


Post Office Address 




City: 


State: 


ZIP: 


Country: 


Name of Additional Joint Inventor: 


I] A petition has been filed for this unsigned inventor 


Given Name (first and middle [if any]) 


Family Name or Surname 






Inventor's 
Signature 




Date 




Residence 


City: 


State: 


Country: 


Citizenship: 


Post Office Address 




City: 


State: 


ZIP: 


Country: 



I I Additional inventors are being named on the 



.supplemental Additional Inventor(s) sheet(s) PTO/SB/02A attached hereto. 



